Controlling access to electronic documents
First Claim
Patent Images
1. A computer system for protecting electronic documents, comprising:
- a repository for storing an electronic document having a document attribute;
an access layer operable to control access to the electronic document, wherein the access layer is used by an accessor to access at least one portion of the electronic document, the accessor having an accessor attribute;
a rule set;
an expert system, wherein the expert system provides authorization information to the access layer in response to a request, and wherein the expert system is operable to determine the authorization information comprising an access behavior with regards to the at least one portion, and wherein the expert system determines access behavior by evaluating rules of the rule set with reference to at least the document attribute and the accessor attribute when the accessor tries to access the at least one portion using the access layer; and
a framework, the framework generating a runtime representation of the document that references the document and restricts the access of the accessor to the document in accordance with the access behavior.
2 Assignments
0 Petitions
Accused Products
Abstract
Methods and apparatus, including computer program products, for protecting electronic documents. A computer system includes a repository for storing an electronic document that has a document attribute. An access layer is used by an accessor to access at least one portion of the electronic document. The accessor has an accessor attribute. An expert system is operable to determine an access behavior with regards to the at least one portion by evaluating rules of a rule set with reference at least to the document attribute and the accessor attribute when the accessor tries to access the at least one portion using the access layer.
-
Citations
30 Claims
-
1. A computer system for protecting electronic documents, comprising:
-
a repository for storing an electronic document having a document attribute; an access layer operable to control access to the electronic document, wherein the access layer is used by an accessor to access at least one portion of the electronic document, the accessor having an accessor attribute; a rule set; an expert system, wherein the expert system provides authorization information to the access layer in response to a request, and wherein the expert system is operable to determine the authorization information comprising an access behavior with regards to the at least one portion, and wherein the expert system determines access behavior by evaluating rules of the rule set with reference to at least the document attribute and the accessor attribute when the accessor tries to access the at least one portion using the access layer; and a framework, the framework generating a runtime representation of the document that references the document and restricts the access of the accessor to the document in accordance with the access behavior. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A method for controlling access to electronic documents, comprising:
-
receiving a request from an accessor to access at least one portion of an electronic document stored in a repository, with the electronic document having a document attribute and the accessor having an accessor attribute; requesting authorization information from an expert system with regards to the authorization of the accessor to the at least one portion in response to receiving the request; receiving from the expert system the authorization information including an access behavior with regards to the at least one portion, where the access behavior is determined by applying rules of a rule set to data comprising at least the document attribute and the accessor attribute; generating a runtime representation of the document that references the document and restricts the access of the accessor to the document in accordance with the access behavior; and granting the accessor access to the at least one portion according to the access behavior. - View Dependent Claims (12, 13, 14, 15, 16)
-
-
17. A computer program product, tangibly embodied on a machine readable storage medium, comprising instructions operable to cause a data processing apparatus to:
-
receive a request from an accessor to access at least one portion of an electronic document stored in a repository, with the electronic document having a document attribute and the accessor having an accessor attribute; request authorization information from an expert system with regards to the authorization of the accessor to the at least one portion in response to receiving the request; receive from the expert system the authorization information including an access behavior with regards to the at least one portion, where the access behavior is determined by applying rules of a rule set to data comprising at least the document attribute and the accessor attribute; generate a runtime representation of the document that references the document and restrict the access of the accessor to the document in accordance with the access behavior; and grant the accessor access to the at least one portion according to the access behavior. - View Dependent Claims (18, 19, 20, 21, 22, 23)
-
-
24. A method for controlling access to electronic documents, the method comprising:
-
receiving a request from an accessor to access at least one portion of an electronic document stored in a repository, with the electronic document having a document attribute and the accessor having an accessor attribute; requesting authorization information from an expert system with regards to the authorization of the accessor to the at least one portion in response to receiving the request; receiving from the expert system the authorization information including an access behavior with regards to the at least one portion, where the access behavior is determined by applying rules of a rule set to data comprising at least the document attribute and the accessor attribute; retrieving structure meta data of the document that describes the structure of the document, where the structure meta data indicates that the at least one portion is an inner sub portion of an outer portion of the document; and granting the accessor access to the at least one portion according to the access behavior, where granting the accessor access further comprises; allowing the accessor to access the inner sub portion; and preventing the accessor from accessing the outer portion. - View Dependent Claims (25, 26)
-
-
27. A computer program product, tangibly embodied on a machine readable medium, comprising instructions operable to cause a data processing apparatus to:
-
receive a request from an accessor to access at least one portion of an electronic document stored in a repository, with the electronic document having a document attribute and the accessor having an accessor attribute; request authorization information from an expert system with regards to the authorization of the accessor to the at least one portion in response to receiving the request; receive from the expert system the authorization information including an access behavior with regards to the at least one portion, where the access behavior is determined by applying rules of a rule set to data comprising at least the document attribute and the accessor attribute; retrieve structure meta data of the document that describes the structure of the document, where the structure meta data indicates that the at least one portion is an inner sub portion of an outer portion of the document; and grant the accessor access to the at least one portion according to the access behavior, where granting the accessor access further comprises; allowing the accessor to access the inner sub portion; and preventing the accessor from accessing the outer portion. - View Dependent Claims (28, 29, 30)
-
Specification